Analysis
No analysis available yet.
Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).
| Vendor | Product | Default status | Versions | ||||||
|---|---|---|---|---|---|---|---|---|---|
| FolioVision | FV Flowplayer Video Player | unaffected |
|
No data.
No data.
No data available yet.
Vendor Solution
Update the WordPress FV Flowplayer Video Player Plugin to the latest available version (at least 7.5.51.7212).
Tracking
Sign in to view the affected projects.
No advisories yet.
Mon, 15 Jun 2026 20:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | Subscriber Cross Site Scripting (XSS) in FV Flowplayer Video Player < 7.5.51.7212 versions. | |
| Title | WordPress FV Flowplayer Video Player plugin < 7.5.51.7212 - Cross Site Scripting (XSS) vulnerability | |
| Weaknesses | CWE-79 | |
| References |
| |
| Metrics |
cvssV3_1
|
Subscriptions
No data.
MITRE
Status: PUBLISHED
Assigner: Patchstack
Published:
Updated: 2026-06-15T21:36:43.747Z
Reserved: 2026-06-01T15:29:19.865Z
Link: CVE-2026-49773
Vulnrichment
No data.
NVD
Status : Deferred
Published: 2026-06-15T21:17:22.173
Modified: 2026-06-15T21:24:32.790
Link: CVE-2026-49773
Redhat
No data.
OpenCVE Enrichment
No data.
-
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')